8 matches found
EUVD-2020-8061
Malware in sbrugna...
EUVD-2019-2529
Malware in sbrugna...
EUVD-2012-4436
Malware in sbrugna...
Privilege Escalation
claws-mail is vulnerable to privilege escalation. The vulnerability exists due to the lack of link checks before accepting a click in textviewurisecuritycheck in textview.c...
MGASA-2020-0321 Updated claws-mail packages fix security vulnerability
common/session.c in Claws Mail before 3.17.6 has a protocol violation because suffix data after STARTTLS is mishandled CVE-2020-15917...
CVE-2019-10735
In Claws Mail 3.14.1, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted parts can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the...
CVE-2012-4507
The strchr function in procmime.c in Claws Mail aka claws-mail 3.8.1 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted email...
CVE-2007-2958
Format string vulnerability in the incputerror function in src/inc.c in Sylpheed 2.4.4, and Sylpheed-Claws Claws Mail 1.9.100 and 2.10.0, allows remote POP3 servers to execute arbitrary code via format string specifiers in crafted replies...